← Back to Skills Marketplace
117
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install wcs-helper-server-skill
Description
Your server's automatic caretaker — checks CPU, memory, and disk health, alerts you only when real action is needed. Use when: server feels slow, a cron job...
Usage Guidance
Do not install or run this skill on a production host until you take a few precautions: 1) Inspect and edit the notify() code — change or remove the hard-coded owner_id and ensure alerts go only to your own, explicitly configured channel (or disable notifications). 2) Do not copy the crontab example that runs 'auto-fix.sh all' — use '--preview' in cron or omit automatic execution entirely. 3) Ignore or verify the npx install line in _meta.json — do not run unknown npx installs; prefer using the bundled scripts only after review. 4) Run the health-check scripts first in a safe environment (test server) and exercise --preview flows; only use --execute after manual confirmation. 5) If you will install cron/system files, run install-cron.sh as root only after confirming log paths and cron entries. If you’re unsure, ask the publisher to explain why notifications default to that owner_id and request a configurable recipient or documented opt-in. If you cannot verify the author, treat the default notification behavior as potential data exfiltration.
Capability Analysis
Type: OpenClaw Skill
Name: wcs-helper-server-skill
Version: 1.0.0
The skill contains a hardcoded Feishu 'owner_id' (ou_ed25ce21ea806c0f0064b8ec88822107) in 'scripts/auto-fix.sh', which causes system metadata such as the hostname and process information to be sent to an external account. This 'phone home' behavior functions as unauthorized data exfiltration of server status. Additionally, 'scripts/auto-fix.sh' includes specific logic for monitoring non-standard processes like 'bilibili' and 'zhihu', suggesting the tool is tailored for a specific botting environment rather than general server health.
Capability Assessment
Purpose & Capability
The name/description align with the included health-check, auto-fix, and cron installer scripts. The scripts perform expected checks and can apply fixes (kill/restart processes, clean disk). However the scripts also embed a hard-coded openclaw/Feishu recipient (owner_id in notify) which is not mentioned as required in the skill metadata and is not a reasonable default for a personal/organizational caretaker — it results in sensitive system info being sent to that account. Also _meta.json includes an npx install command to a third-party repo even though the package already contains the scripts; this inconsistency is unexpected.
Instruction Scope
SKILL.md instructs users to run health-check.sh and auto-fix.sh and to optionally install cron. Most guidance is scoped to health/repair. Problems: an example in 'Alerts (Optional)' shows a crontab entry invoking 'auto-fix.sh all' (no --preview/--execute flag) which could perform destructive changes automatically; other parts of the doc assert preview is safe but examples are inconsistent. The scripts will write to /var/log, /etc/cron.d (if install script used) and history files — these are within the stated purpose but require root to install. The notify function posts formatted host/process info to a hard-coded external user account via openclaw, which is a data-export action outside the user-only notification model described.
Install Mechanism
There is no formal install spec in registry metadata, and the package includes runnable scripts (instruction-only install). However _meta.json contains an install line: 'npx -y clawhub install guanqi0914/guanqi-server-doctor' — that points to a remote package and appears inconsistent with the included scripts. Pulling code via npx from an external repo is higher-risk and not necessary if the scripts are bundled; this inconsistency should be clarified before running any install commands.
Credentials
Registry declares no required env vars or credentials, but scripts reference and expect environment/config items: FEISHU_BOT_TOKEN or /etc/server-doctor/feishu.conf, openclaw CLI availability, CRON_MODE, MEM_THRESHOLD, HEALTH_HISTORY and the ability to write /var/log and /etc/cron.d. Most importantly the notify() Python snippet sends messages (hostname, process lists, suggested restart commands) to a hard-coded owner_id via 'openclaw message send --channel feishu --target user:ou_ed25c... --account default'. There is no registry-declared credential for that target and the SKILL.md does not tell users that alerts default to sending sensitive info to the skill author — this is disproportionate and unexpected.
Persistence & Privilege
always:false and model invocation defaults are normal. The included install-cron.sh intentionally writes to /etc/cron.d and creates logs in /var/log when run as root — that requires elevated privileges and will persist health-check invocation. That behavior is consistent with the stated optional cron feature, but because install requires root, users should be deliberate. Combined with the hard-coded notify recipient, automatic cron-driven reporting increases the blast radius.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install wcs-helper-server-skill - After installation, invoke the skill by name or use
/wcs-helper-server-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of wcs-helper-server-skill.
- Monitors server CPU, memory, and disk health with actionable alerts.
- Provides easy commands for health checks, quick fixes, and on-demand or automatic (cron-based) operation.
- Only alerts when intervention is needed (e.g., high memory/disk usage, zombie processes, cron job failures).
- Includes preview mode for safe fixes and clear troubleshooting/uninstall instructions.
v2.5.0
v2.5.0: process info in alerts, rewritten SKILL.md for non-technical users
Metadata
Frequently Asked Questions
What is Wcs Helper Server Skill?
Your server's automatic caretaker — checks CPU, memory, and disk health, alerts you only when real action is needed. Use when: server feels slow, a cron job... It is an AI Agent Skill for Claude Code / OpenClaw, with 117 downloads so far.
How do I install Wcs Helper Server Skill?
Run "/install wcs-helper-server-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Wcs Helper Server Skill free?
Yes, Wcs Helper Server Skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Wcs Helper Server Skill support?
Wcs Helper Server Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Wcs Helper Server Skill?
It is built and maintained by 无上宗师 (@guanqi0914); the current version is v1.0.0.
More Skills